1 / 15

Totally Ordered Broadcast in the face of Network Partitions [Keidar and Dolev,2000]

Totally Ordered Broadcast in the face of Network Partitions [Keidar and Dolev,2000]. INF5360 Student Presentation 4/3-08 Miran Damjanovic mirand@ifi.uio.no. Overview. COReL (Introduction) COReL (The Model) COReL (System Architecture) COReL (Problem Definition:Service Guarantees)

tansy
Télécharger la présentation

Totally Ordered Broadcast in the face of Network Partitions [Keidar and Dolev,2000]

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Totally Ordered Broadcast in the face of Network Partitions[Keidar and Dolev,2000] INF5360 Student Presentation 4/3-08 Miran Damjanovic mirand@ifi.uio.no

  2. Overview COReL (Introduction) COReL (The Model) COReL (System Architecture) COReL (Problem Definition:Service Guarantees) COReL (Algorithm) Related Work Summary/Conclusion

  3. COReL (Introduction) COReL (Consistent Object Replication Layer) : An algorithm for Totally Ordered Broadcast when the network is partitioned or processes fail. To achieve this, the algorithm uses an underlying GCS to multicast messages to all connected members GCS (Group Communication Service) : provides reliable multicast and membership services among multicast groups, herein detecting failures and extracting faulty members from the membership, Failure Detector Totally Ordered Broadcast :For all messages m1 and m2 and all processes pi and pj, if m1 is received at pi before m2 is, then m2is not received at pj before m1 is COReL guarantees that if a majority of processes (primary component) form a connected component, eventually they will deliver all messages sent by any of them, in the same order Processes using COReL are allowed to initiate messages even if they are not members of a majority component.Thus, messages can eventually become totally ordered even if their initiator is never a member of a majority component COReL recovers lost messages (in scenarios where processes are disconnected, by GCS, and then connected again) and extends the order achieved by the GCS to a global total order The algorithm imposes no overhead, all information needed is piggybacked on regular messages

  4. COReL (The Model) There is no bound on the message transmission time (asynchronus system) The underlying communication network provides datagram message delivery Crashed processes may later recover with their stable storage intact, live processes are considered correct and crashed processes are considered faulty Malicious failures are not considered, there exists a property for message integrity Message Integrity: If a message m is delivered by a process p, then there is a causally preceding send event of m at some process q

  5. COReL (System Architecture)

  6. COReL (System Architecture) All copies of COReL are members of one multicast group The multicast group undergoes view changes when processes are added or taken out of the group due to failures A view v is a pair consisting of a view set v.set, and a view identifier v.id A process p is a member of a view v if p is in v.set Changes in views are reported to COReL through special view messages If view v is the latest view that process p received before send (receive) event e, then we say that e occurs at p in v

  7. COReL (System Architecture) -PropertiesoftheGCS • No Duplication: Every message delivered at process p is delivered only once at p • Total Order: A unique logical timestamp is attached to every message when it is delivered. The TS total order preserves the causal partial order and the GCS deliveres messages at each process in the TS order, possibly with gaps • Virtual Synchrony: Any two processes undergoing the same two consecutive views in a group G deliver the same set of messages in G within the former view • Property 3.5: Let p and q be members of a view v. If p delivers a message m before m’ in v, and if q delivers m’ and later sends a message m’’, such that p then delivers m’’, then q also delivers m before m’

  8. COReL (Problem Definition:Service Guarantees) • Safety - Property 3.6:At each process, messages become totally ordered in an order which is a prefix of some common global total order - Propery 3.7:Messages are totally ordered by each process in an order which preserves the causal partial order • Liveness - Propery 3.7:P is a set of processes such that P = v.set, where v is a view. After a time t, no member of P delivers any views, so that the last view delivered by each p in P is v. Then we assume that every message sent by a process in P is delivered by every other process in P. Under these circumstances COReL guarantees that every message sent by a process in P is eventually totally ordered by all the members of P

  9. COReL (Algorithm) • Reliable Multicast - Each process logs every message that it receives from the GCS on stable storage - When components re-merge, a Recovery Procedure is invoken - Messages are stored before the message send event is complete • Message Ordering - COReL orders messages according to their TS, provided by the GCS - When a message is retransmitted, only the ”old” TS is valid - Order Rule 1:Once a message is acknowledged by all the members of a primary component, members of this component are allowed to totally order the message - Each instance of COReL maintains a local message queue, MQ, incoming messages within each component are placed at the end of this queue - When components merge, retransmitted messages from other components may interleave with messages in MQ, but never preceding allredy ordered messages

  10. COReL (Algorithm)- The Colors Model • red: no knowledge about the message’s total order, no knowledge that it has a different color • yellow: messages that are received and acknowledged in the context of a primary component and might have become green at other members of PM • green: have knowledge about message’s total order, marks messages green when it knows that all the other members of the PM know that the message is yellow. Green  totally ordered • The MQ is divided into three zones: a green prefix, then a yellow zone and then a red suffix • When components merge, members of the last PM enforce all the green an yellow messages before the red, red messages from different components are interleaved according to the TS order

  11. COReL (Algorithm)- Invariants of the algorithm • If a process p has in its MQ a message m, originally sent by process q, then for every message m’ that q sent before m (or had in its MQ before sending m), the MQ of p contains m’ before m. (Causal) • New green messages are appended to the end of the green prefix of MQ for a process p, and this is the only way that this order,green prefix of MQ for p, of green messages is allowed to change, otherwise the order of green messages in MQ is never altered. (No Changes in Green) • If p and q are processes running the algorithm, then at any point during execution, one of the green prefixes of MQ for either p or q is a prefix of the other. (Agreed green) • If a process p has marked a message m green in the context of a PM, and a process q knows of PM, then q has m marked as green/yellow. Furthermore the prefixes of the MQ’s for the two processes ending at message m are equal. (Yellow)

  12. COReL (Algorithm)- Handling view changes • When a view change is delivered, the View Change Handler is invoken (Figure 3.5) • The primary component bit is set to FALSE, blocks regular messages and stops initiating regular messages • If the new view introduces new members, the Recovery Procedure(Section 5.5.2) is invoken in order to bring all the members of the new view to a common state • The members of the new view exchange state messages, and report on the last PM they know of, and it’s green and yellow lines. In this way every process knows which every other member has, and missing messages are retransmitted

  13. COReL (Algorithm)- Handling view changes (2) • The new green line is the maximum of the green lines of all the members, and the new yellow line is the minimum of the yellow lines of the members that know of PM • Processes that need to retransmit messages do so,according to the Retransmission Rule, and with their original ACKs • If the new view is a majority, the members will try to establish a new PM (Section 5.5.1), if not (process faults-new members)  establish view,no retransmission • If the GCS reports of a new view change before the protocol of View Change Handler is over,the protocol is immediately restarted for the new view, nothing needs to be undone

  14. COReL (Related Work) • Consensus Algorithms • Paxos multiple Consensus Algorithm • Atomic Broadcast (Sequence of C-decisions) • Total Ordering protocol in Amir,1995 • Fekete et al.1997 made some simplifications, simpler to represent but less efficient • The correctness of the algorithm is proved in Keidar,1994

  15. Summary • Motive: propose an algorithm for Totally Ordered Broadcast , resillient to both process failures and network partitions • Conclusion: the algorithm proposed is briefly described,the correctness of it is proven in another paper, Keidar,1994..Nevertheless,the paper corrsponds to the above motive. • What makes it different from similar algorithms?

More Related